Post

Visualizzazione dei post da dicembre, 2015

Researcher criticises 'weak' crypto in Internet of Things alarm system

http://www.theregister.co.uk/2015/12/31/iot_alarm_crypto/

BBC News: AVG's Web TuneUp put millions of Chrome users at risk

http://www.bbc.co.uk/news/technology-35198435

Porno su maxischermo del casinò a Portorose: catturato - Cronaca - Il Piccolo

http://ilpiccolo.gelocal.it/trieste/cronaca/2015/12/30/news/porno-su-maxischermo-del-casino-a-portorose-catturato-il-colpevole-1.12695221

Google probes AVG Chrome widget after 9m users exposed by bugs • The Register

http://www.theregister.co.uk/2015/12/29/avg_google_chrome_extension/

Critical Flaws Found in Network Management Systems

https://threatpost.com/critical-flaws-found-in-network-management-systems/115649/

Botnet of Aethra Routers Used for Brute-Forcing WordPress Sites

http://news.softpedia.com/news/botnet-of-aethra-routers-used-for-brute-force-wordpress-sites-498028.shtml

Password-less database 'open-sources' 191m US voter records on the web

http://www.theregister.co.uk/2015/12/28/security_researcher_spots_191_millionrecord_us_voter_database_online/

Patch now! Flash-exploitin' PC-hijackin' attack spotted in the wild by Huawei bods

http://www.theregister.co.uk/2015/12/28/adobe_flash_security_update/

Feds widen probe into lottery IT boss who rooted game for profit

http://www.theregister.co.uk/2015/12/24/feds_widen_investigation_into_lottery_it_boss_who_rooted_game_for_profit/

BBC News: Hyatt hotel visitors hit by payments system hack attack

http://www.bbc.co.uk/news/technology-35175263

BBC News: Man pleads guilty to financial news hack

http://www.bbc.co.uk/news/technology-35166992

Keeping browsing experience in users’ hands | Microsoft Malware Protection Center

https://blogs.technet.microsoft.com/mmpc/2015/12/21/keeping-browsing-experience-in-users-hands/

Nota senza titolo

http://www.theregister.co.uk/2015/12/21/iranian_hackers_target_new_york_dam/

Secret Code Found in Juniper's Firewalls Shows Risk of Government Backdoors | WIRED

http://www.wired.com/2015/12/juniper-networks-hidden-backdoors-show-the-risk-of-government-backdoors/

Juniper Networks finds backdoor code in its firewalls

http://www.engadget.com/2015/12/17/juniper-networks-finds-backdoor-code-in-its-firewalls/

Microsoft Trusted Root Certificate program getting a lot less trusting • The Register

http://www.theregister.co.uk/2015/12/17/microsoft_trusted_root_certificate_cull/

Chinese Hacker Pockets $170,000 After Hacking Airline Website

http://news.softpedia.com/news/chinese-hacker-pockets-170-000-after-hacking-airline-website-497771.shtml

Patch madness! 273 vulnerabilities from four vendors in one week - SC Magazine UK

http://www.scmagazineuk.com/patch-madness-273-vulnerabilities-from-four-vendors-in-one-week/article/459376/?platform=hootsuite

Press Backspace 28 times to own unlucky Grub-by Linux boxes

http://www.theregister.co.uk/2015/12/17/press_backspace_28_times_to_own_any_grubby_linux_box/

Project Zero: FireEye Exploitation: Project Zero’s Vulnerability of the Beast

http://googleprojectzero.blogspot.com/2015/12/fireeye-exploitation-project-zeros.html

Exploit upgrade for Microsoft Word Intruder crimeware kit |

http://nakedsecurity.sophos.com/2015/12/14/exploit-upgrade-for-microsoft-word-intruder-crimeware-kit/

Car parking apps vulnerable to man-in-the-middle attacks |

http://nakedsecurity.sophos.com/2015/12/15/car-parking-apps-vulnerable-to-man-in-the-middle-attacks/

FireEye flamed: single email allows total network access

http://www.theregister.co.uk/2015/12/16/fireeye_ultra_critical_flaw/

Patch now! Joomla attacked in remote code execution blitzkrieg

http://www.theregister.co.uk/2015/12/15/joomla_vuln/

European Space Agency records leaked for amusement, attackers say

http://www.csoonline.com/article/3014507/security/european-space-agency-records-leaked-for-amusement-attackers-say.html

Attack Against DNS Root Servers

http://www.root-servers.org/news/events-of-20151130.txt

MacKeeper Leaks 13 Million Mac Owners' Data, Leaves Passwords Open To Easy Cracking - Forbes

http://www.forbes.com/sites/thomasbrewster/2015/12/14/mackeeper-13-million-apple-mac-data-leak-passwords/

Nota senza titolo

http://www.theregister.co.uk/2015/12/14/latentbot_memory_resident_malware/

Nota senza titolo

http://www.theregister.co.uk/2015/12/14/trend_micro_glass_tank/

Nota senza titolo

http://www.bbc.co.uk/news/technology-35091534

Russian friends make German web scum the 'best' in European Union

http://www.theregister.co.uk/2015/12/14/trend_micro_umarkt/

Apple's App Store infected with XcodeGhost malware in China - BBC News

http://www.bbc.co.uk/news/technology-34311203

Predictable: How AV flaw hit Microsoft's Windows defences • The Register

http://www.theregister.co.uk/2015/12/11/anti_virus_trips_up_windows_defences/

Car parking mobile apps are vulnerable to hacking, say infosec folk • The Register

http://www.theregister.co.uk/2015/12/11/mobile_parking_apps_audit/

Android Gmail bug lets you spoof your email address

http://nakedsecurity.sophos.com/2015/11/18/android-gmail-bug-lets-you-spoof-your-email-address/

The Casino Malvertising Campaign

https://blog.malwarebytes.org/malvertising-2/2015/11/the-casino-malvertising-campaign/

Who's running dozens of top-secret unpatched databases? The Dept of Homeland Security

http://www.theregister.co.uk/2015/11/20/homeland_securitys_secret_unpatched_pcs_dbs/

Hackers add exploit kit to article asking 'Is cyber crime out of control?'

http://www.theregister.co.uk/2015/12/11/grauniad_asks_is_cyber_crime_out_of_control_vxers_answer_with_hack/

Microsoft Security Bulletin MS15-127 - Critical

https://technet.microsoft.com/en-us/library/security/ms15-127.aspx

State-sponsored hackers spread backdoors in Middle East

http://www.ehackingnews.com/2015/12/state-sponsored-hackers-spread.html

Revealed: Mystery 7-year cyberspy campaign in Latin America

http://www.theregister.co.uk/2015/12/10/packrat_spying_latin_america/

Microsoft warns of possible attacks after Xbox Live certificate leaked |

http://nakedsecurity.sophos.com/2015/12/10/microsoft-warns-of-possible-attacks-after-xbox-live-certificate-leaked/

Phony WhatsApp update could cost you much more than a dollar |

http://nakedsecurity.sophos.com/2015/12/10/phony-whatsapp-update-could-cost-you-much-more-than-a-dollar/

Anonymous tumba la web del primer ministro nipón por la caza de ballenas

http://elpais.com/elpais/2015/12/10/ciencia/1449737153_237403.html

All eyes on the jailbroken as iOS, Mac OS X threat level ratchets up

http://www.theregister.co.uk/2015/12/10/ios_mac_osx_threat_trends/

'Legacy' Wordpress blog site of The Independent serving malware

http://www.theregister.co.uk/2015/12/10/legacy_wordpress_blog_site_of_ithe_independenti_serving_malware/

Brit-American hacker duo throws pwns on IoT BBQs, grills open admin

http://www.theregister.co.uk/2015/12/10/american_hacker_duo_throws_pwns_on_iot_bbqs_grills_open_admin/

Kaspersky, McAfee, and AVG all vulnerable to major flaw

http://www.theregister.co.uk/2015/12/10/kaspersky_mcafee_avg_vulnerable/

Epic failure of Phone House & Dutch telecom providers to protect personal data: How I could access 12+ million records #phonehousegate | Weblog | Sijmen Ruwhof

http://sijmen.ruwhof.net/weblog/608-personal-data-of-dutch-telecom-providers-extremely-poorly-protected-how-i-could-access-12-million-records

Someone Just Tried to Take Down Internet's Backbone with 5 Million Queries/Sec

http://thehackernews.com/2015/12/dns-root-servers-ddos-attack.html

Microsoft Security Bulletin MS15-127 - Critical

https://technet.microsoft.com/en-us/library/security/ms15-127.aspx

Why Algebraic Eraser may be the riskiest cryptosystem you’ve never heard of

http://arstechnica.com/security/2015/11/why-algebraic-eraser-may-be-the-most-risky-cryptosystem-youve-never-heard-of/

Ad Fraud Botnet Might Cause $3 Billion in Damages to Online Advertisers

http://news.softpedia.com/news/ad-fraud-botnet-might-cause-3-billion-in-damages-to-online-advertisers-496377.shtml

Nota senza titolo

http://www.bbc.co.uk/news/technology-35050226

Windows' Nemesis: Pre-boot malware pwns payment processors • The Register

http://www.theregister.co.uk/2015/12/07/bootkit_malware_targets_payment_processing_firms/

Day 2: UK research network Janet still being slapped by DDoS attack

http://www.theregister.co.uk/2015/12/08/uk_research_network_janet_ddos/

A search engine for the Internet of (insecure) Things |

http://nakedsecurity.sophos.com/2015/12/08/a-search-engine-for-the-internet-of-insecure-things/

Microsoft leaks Xboxlive SSL server cert

http://www.theregister.co.uk/2015/12/09/microsoft_leaks_xboxlive_ssl_server_cert/

Kill Flash Now: 78 bugs patched in latest update

http://www.theregister.co.uk/2015/12/08/78_flash_bug_patches/

It's nearly 2016, and Windows DNS servers can be pwned remotely

http://www.theregister.co.uk/2015/12/08/patch_tuesday_december2015/

Linksys routers vulnerable through CGI scripts • The Register

http://www.theregister.co.uk/2015/12/08/linksys_routers_vulnerable_through_cgi_scripts/

Yahoo Mail fixed against evil emails you didn’t need to open |

https://nakedsecurity.sophos.com/2015/12/07/yahoo-mail-fixed-against-evil-emails-you-didnt-need-to-open/

Nota senza titolo

http://www.theregister.co.uk/2015/12/07/janet_under_persistent_ddos_attack/

Forced authorisation chip and PIN scam hitting high-end retailers | Bentham's Gaze

https://www.benthamsgaze.org/2015/12/01/forced-authorisation-chip-and-pin-hitting-high-end-retailers/

Windows' Nemesis: Pre-boot malware pwns payment processors • The Register

http://www.theregister.co.uk/2015/12/07/bootkit_malware_targets_payment_processing_firms/

Industrial gas detectors vulnerable to a remote attacker |

https://nakedsecurity.sophos.com/2015/12/07/industrial-gas-detectors-vulnerable-to-a-remote-attacker-with-low-skill/

Whisper this, but Java deserialisation vulnerability affects more libraries • The Register

http://www.theregister.co.uk/2015/12/07/java_deserialisation_research_library_vulnerable/

Russian "Pawn Storm" expands, rains hell on NATO, air-gapped PCs

http://www.theregister.co.uk/2015/12/07/op_pawn_storm/

Lock up your top-of-racks, says Cisco, there's a bug in the USB code

http://www.theregister.co.uk/2015/12/07/lock_up_your_topofracks_says_cisco_theres_a_bug_in_the_usb_code/

OopSSL: Pushme-Pullyou for OpenSSL patches

http://www.theregister.co.uk/2015/12/06/oopssl_openssl_patch_pushed_pulled_pushed_again/

High-Profile Mobile Apps At Risk Due to Three-Year-Old Vulnerability

http://blog.trendmicro.com/trendlabs-security-intelligence/high-profile-mobile-apps-at-risk-due-to-three-year-old-vulnerability/

Domination: Crims steal admin logins, infect sites, drop Cryptowall 4

http://www.theregister.co.uk/2015/12/04/domination_crims_steal_admin_logins_infect_sites_drop_cryptowall_4/

Dorkbot - botnet

https://www.us-cert.gov/ncas/alerts/TA15-337A

Anatomy of a Wi-Fi hole: Take care in your hotel this Christmas! |

https://nakedsecurity.sophos.com/2015/12/03/anatomy-of-a-wi-fi-hole-take-care-in-your-hotel-this-christmas/

Ponmocup is the '15 million' machine botnet you've never heard of • The Register

http://www.theregister.co.uk/2015/12/03/ponmocup_is_the_15_million_machine_botnet_youve_never_heard_of/

Industrial control system gateway fix opens Heartbleed, Shellshock • The Register

http://www.theregister.co.uk/2015/12/03/industrial_control_system_gateway_fix_opens_heartbleed_shellshock/

Popular 3G/4G data dongles are desperately vulnerable, say hackers • The Register

http://www.theregister.co.uk/2015/12/03/3g4g_data_dongles_vulnerable/

Australia Bureau of Meteorology 'hacked' - BBC News

http://www.bbc.co.uk/news/world-australia-34980884

VTech Hacker Explains Why He Hacked the Toy Company | Motherboard

http://motherboard.vice.com/read/vtech-hacker-explains-why-he-hacked-the-toy-company

Insecure App Exposed Billboard Lights to Hacker Attacks | SecurityWeek.Com

http://www.securityweek.com/insecure-app-exposed-billboard-lights-hacker-attacks

DHS Giving Firms Free Penetration Tests — Krebs on Security

http://krebsonsecurity.com/2015/12/dhs-giving-firms-free-penetration-tests/

Conficker, back from the undead, dominates malware threat landscape

http://www.theregister.co.uk/2015/12/01/conficker_dominates_threat_landscape_malware/